@hasna/uptime 0.1.8 → 0.1.10

package/dist/cloud-plan.js

@@ -21,7 +21,7 @@ function buildAwsDeploymentPlan(options = {}) {
   const image = clean(options.image, `${imageRepositoryUri}@sha256:<image-digest>`);
   const evidenceBucket = clean(options.evidenceBucket, `hasna-${stage}-${prefix}-evidence`);
   const hostedSqliteDbPath = clean(options.hostedSqliteDbPath, DEFAULT_HOSTED_SQLITE_DB);
-  const runtimePackageVersion = clean(options.runtimePackageVersion, "0.1.8");
+  const runtimePackageVersion = clean(options.runtimePackageVersion, "0.1.10");
   const protectedAccessMode = options.protectedAccessMode ?? DEFAULT_PROTECTED_ACCESS_MODE;
   const protectedAccessUrl = protectedAccessMode === "cloudfront_default_domain" ? "https://<cloudfront-domain>" : `https://${hostname}`;
   const cluster = `${prefix}-${stage}`;
@@ -153,9 +153,9 @@ function buildAwsDeploymentPlan(options = {}) {
         "Disable scheduler/reporter services before data rollback.",
         "Restore EFS backup recovery point only after explicit operator approval and audit record."
       ],
-      spark01: [
+      privateProbe: [
         "Create a private probe identity with a caller-managed public key.",
-        "Install @hasna/uptime on Spark01 and write the generated env file with mode 0600.",
+        "Install @hasna/uptime on the private probe operator machine and write the generated env file with mode 0600.",
         "Run the private probe against the hosted /api/v1 probe endpoint once it exists."
       ]
     },
@@ -164,7 +164,7 @@ function buildAwsDeploymentPlan(options = {}) {
       "The EFS SQLite bridge is single-writer only: web target desired count is 1 and scheduler/public-probe/reporter targets remain 0 until Postgres and cloud leases exist.",
       "Hosted production auth/RBAC must replace broad static hosted-token operation before exposure.",
       "Public probe execution still needs DNS, redirect, and rebinding SSRF enforcement plus cloud check-job leases.",
-      "Spark01 hosted probe enrollment, claim, submit, heartbeat, revocation, and rotation are not cloud-backed yet."
+      "Private probe enrollment, claim, submit, heartbeat, revocation, and rotation are not cloud-backed yet."
     ],
     requiredEvidence: [
       "Infrastructure PR/synth/plan from the approved infra repository.",
@@ -174,7 +174,7 @@ function buildAwsDeploymentPlan(options = {}) {
       "Single-writer ECS evidence: one web task maximum and no scheduler/public-probe/reporter EFS mounts.",
       "EFS encryption, access point, mount-target, AWS Backup, and restore-drill evidence.",
       "S3 bucket KMS, versioning, lifecycle, and public-access-block evidence.",
-      "Spark01 private-probe registration, key-file mode, heartbeat, and revocation evidence."
+      "Private-probe registration, key-file mode, heartbeat, and revocation evidence."
     ],
     safety: {
       liveAwsMutation: false,
@@ -192,16 +192,16 @@ function buildAwsDeploymentPlan(options = {}) {
     }
   };
 }
-function buildSpark01CloudConfig(options = {}) {
+function buildPrivateProbeCloudConfig(options = {}) {
   const apiUrl = clean(options.apiUrl, `https://${DEFAULT_HOSTNAME}/api/v1`);
   const workspaceId = clean(options.workspaceId, DEFAULT_WORKSPACE_ID);
-  const machineId = clean(options.machineId, "spark01");
-  const privateKeyFile = clean(options.probePrivateKeyFile, "~/.hasna/uptime/probes/spark01.key.pem");
+  const machineId = clean(options.machineId, "private-probe-01");
+  const privateKeyFile = clean(options.probePrivateKeyFile, "~/.hasna/uptime/probes/private-probe-01.key.pem");
   const probeId = options.probeId?.trim();
   const blockers = [
     ...probeId ? [] : ["Cloud-registered private probe id is required before writing a sourceable env file."],
     "Hosted probe claim and submit routes still fail closed until cloud check_jobs and workspace stores are implemented.",
-    "Spark01 enrollment, heartbeat, revocation, rotation, and bounded offline lease handling are not implemented yet."
+    "Private probe enrollment, heartbeat, revocation, rotation, and bounded offline lease handling are not implemented yet."
   ];
   const env = {
     HASNA_UPTIME_MODE: "hosted",
@@ -215,7 +215,7 @@ function buildSpark01CloudConfig(options = {}) {
   if (probeId)
     env.HASNA_UPTIME_PRIVATE_PROBE_ID = probeId;
   return {
-    kind: "open-uptime.spark01-cloud-config",
+    kind: "open-uptime.private-probe-cloud-config",
     version: 1,
     generatedAt: new Date().toISOString(),
     status: "blocked",
@@ -227,7 +227,7 @@ function buildSpark01CloudConfig(options = {}) {
       {
         path: privateKeyFile,
         mode: "0600",
-        purpose: "Ed25519 private key generated on Spark01; never paste into cloud config."
+        purpose: "Ed25519 private key generated on the private probe machine; never paste into cloud config."
       },
       {
         path: "~/.hasna/uptime/cloud.env",
@@ -237,7 +237,7 @@ function buildSpark01CloudConfig(options = {}) {
     ],
     commands: [
       "bun install -g @hasna/uptime@latest",
-      "Generate the Spark01 private key locally and register only its public key with the hosted control plane once registration exists.",
+      "Generate the private probe key locally and register only its public key with the hosted control plane once registration exists.",
       "Write ~/.hasna/uptime/cloud.env from this plan, then source it for the private probe service.",
       "Start the private probe worker only after hosted /api/v1 probe claim/submit routes are backed by cloud jobs."
     ],
@@ -246,18 +246,18 @@ function buildSpark01CloudConfig(options = {}) {
       privateKeyInline: false,
       tokenInline: false,
       notes: [
-        "This config is hosted-targeted preflight: Spark01 must not start until cloud probe routes are backed by hosted state.",
+        "This config is hosted-targeted preflight: the private probe must not start until cloud probe routes are backed by hosted state.",
         "The private key file path is referenced, not embedded.",
         "Hosted token or probe auth material must come from the machine secret store, not this generated config."
       ]
     }
   };
 }
-function renderSpark01Env(config) {
+function renderPrivateProbeEnv(config) {
   const required = ["HASNA_UPTIME_PRIVATE_PROBE_ID"];
   const missing = required.filter((key) => !config.env[key]);
   if (missing.length > 0) {
-    throw new Error(`Spark01 env output requires ${missing.join(", ")}`);
+    throw new Error(`private probe env output requires ${missing.join(", ")}`);
   }
   return Object.entries(config.env).map(([key, value]) => `${key}=${shellEscape(value)}`).join(`
 `);
@@ -290,7 +290,7 @@ function shellEscape(value) {
   return `'${value.replace(/'/g, "'\\''")}'`;
 }
 export {
-  renderSpark01Env,
-  buildSpark01CloudConfig,
+  renderPrivateProbeEnv,
+  buildPrivateProbeCloudConfig,
   buildAwsDeploymentPlan
 };

package/dist/index.d.ts

@@ -5,13 +5,13 @@ export { createApiHandler, serveUptime } from "./api.js";
 export { applyImport, previewImport, rollbackImport } from "./imports.js";
 export { buildUptimeReport, sendUptimeReport } from "./report.js";
 export { generateProbeKeyPair, probePublicKeyFingerprint, probeResultSigningPayload, signProbeResult, verifyProbeResultSignature } from "./probes.js";
-export { buildAwsDeploymentPlan, buildSpark01CloudConfig, renderSpark01Env } from "./cloud-plan.js";
+export { buildAwsDeploymentPlan, buildPrivateProbeCloudConfig, renderPrivateProbeEnv } from "./cloud-plan.js";
 export { uptimeHome, uptimeDbPath, uptimeHostedFallbackDbPath, ensureUptimeHome } from "./paths.js";
 export type { UptimeBackup, UptimeBackupCheck, UptimeRuntimeMode, UptimeStoreOptions, MonitorProvenance, SaveImportBatchInput, StoredImportBatch, UpsertMonitorProvenanceInput, } from "./store.js";
 export type { BrowserPageRunner, BrowserPageRunnerResult, FetchLike, } from "./checks.js";
 export type { ImportAction, ImportApplyItem, ImportApplyResult, ImportCandidate, ImportPreview, ImportPreviewItem, ImportRequest, ImportRollbackItem, ImportRollbackResult, ImportSource, } from "./imports.js";
 export type { BrowserFailedRequest, BrowserPageEvidence, AuditEvent, CheckAttemptResult, CheckEvidence, CheckResult, CheckStatus, CreateMonitorKind, CreateMonitorInput, CreateReportScheduleInput, ImportedMonitorInput, ImportedUpdateMonitorInput, EvidenceArtifact, Incident, IncidentStatus, ListAuditEventsOptions, ListReportRunsOptions, ListResultsOptions, Monitor, MonitorKind, MonitorStatus, MonitorSummary, ProbeCheckJob, ProbeCheckJobStatus, ProbeIdentity, ProbeResultSubmission, ProbeSubmissionReceipt, RecordAuditEventInput, ReportDeliveryChannel, ReportDeliveryRecord, ReportEmailChannelConfig, ReportLogsChannelConfig, ReportRun, ReportRunStatus, ReportSchedule, ReportScheduleChannels, ReportScheduleStatus, ReportSmsChannelConfig, SchedulerHandle, UpdateMonitorInput, UpdateReportScheduleInput, UptimeSummary, } from "./types.js";
 export type { ProbeKeyPair, ProbeSigningInput } from "./probes.js";
-export type { AwsDeploymentPlan, AwsDeploymentPlanOptions, AwsServicePlan, Spark01CloudConfig, Spark01CloudConfigOptions, } from "./cloud-plan.js";
+export type { AwsDeploymentPlan, AwsDeploymentPlanOptions, AwsServicePlan, PrivateProbeCloudConfig, PrivateProbeCloudConfigOptions, } from "./cloud-plan.js";
 export type { BuildUptimeReportOptions, SendUptimeReportOptions, UptimeEmailReportTarget, UptimeLogsReportTarget, UptimeReport, UptimeReportDelivery, UptimeSmsReportTarget, } from "./report.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC9F,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC1E,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,yBAAyB,EAAE,yBAAyB,EAAE,eAAe,EAAE,0BAA0B,EAAE,MAAM,aAAa,CAAC;AACtJ,OAAO,EAAE,sBAAsB,EAAE,uBAAuB,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACpG,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,0BAA0B,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AACpG,YAAY,EACV,YAAY,EACZ,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,oBAAoB,EACpB,iBAAiB,EACjB,4BAA4B,GAC7B,MAAM,YAAY,CAAC;AACpB,YAAY,EACV,iBAAiB,EACjB,uBAAuB,EACvB,SAAS,GACV,MAAM,aAAa,CAAC;AACrB,YAAY,EACV,YAAY,EACZ,eAAe,EACf,iBAAiB,EACjB,eAAe,EACf,aAAa,EACb,iBAAiB,EACjB,aAAa,EACb,kBAAkB,EAClB,oBAAoB,EACpB,YAAY,GACb,MAAM,cAAc,CAAC;AACtB,YAAY,EACV,oBAAoB,EACpB,mBAAmB,EACnB,UAAU,EACV,kBAAkB,EAClB,aAAa,EACb,WAAW,EACX,WAAW,EACX,iBAAiB,EACjB,kBAAkB,EAClB,yBAAyB,EACzB,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,EAChB,QAAQ,EACR,cAAc,EACd,sBAAsB,EACtB,qBAAqB,EACrB,kBAAkB,EAClB,OAAO,EACP,WAAW,EACX,aAAa,EACb,cAAc,EACd,aAAa,EACb,mBAAmB,EACnB,aAAa,EACb,qBAAqB,EACrB,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,EACrB,oBAAoB,EACpB,wBAAwB,EACxB,uBAAuB,EACvB,SAAS,EACT,eAAe,EACf,cAAc,EACd,sBAAsB,EACtB,oBAAoB,EACpB,sBAAsB,EACtB,eAAe,EACf,kBAAkB,EAClB,yBAAyB,EACzB,aAAa,GACd,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AACnE,YAAY,EACV,iBAAiB,EACjB,wBAAwB,EACxB,cAAc,EACd,kBAAkB,EAClB,yBAAyB,GAC1B,MAAM,iBAAiB,CAAC;AACzB,YAAY,EACV,wBAAwB,EACxB,uBAAuB,EACvB,uBAAuB,EACvB,sBAAsB,EACtB,YAAY,EACZ,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,aAAa,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC9F,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC1E,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,yBAAyB,EAAE,yBAAyB,EAAE,eAAe,EAAE,0BAA0B,EAAE,MAAM,aAAa,CAAC;AACtJ,OAAO,EAAE,sBAAsB,EAAE,4BAA4B,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAC9G,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,0BAA0B,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AACpG,YAAY,EACV,YAAY,EACZ,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,oBAAoB,EACpB,iBAAiB,EACjB,4BAA4B,GAC7B,MAAM,YAAY,CAAC;AACpB,YAAY,EACV,iBAAiB,EACjB,uBAAuB,EACvB,SAAS,GACV,MAAM,aAAa,CAAC;AACrB,YAAY,EACV,YAAY,EACZ,eAAe,EACf,iBAAiB,EACjB,eAAe,EACf,aAAa,EACb,iBAAiB,EACjB,aAAa,EACb,kBAAkB,EAClB,oBAAoB,EACpB,YAAY,GACb,MAAM,cAAc,CAAC;AACtB,YAAY,EACV,oBAAoB,EACpB,mBAAmB,EACnB,UAAU,EACV,kBAAkB,EAClB,aAAa,EACb,WAAW,EACX,WAAW,EACX,iBAAiB,EACjB,kBAAkB,EAClB,yBAAyB,EACzB,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,EAChB,QAAQ,EACR,cAAc,EACd,sBAAsB,EACtB,qBAAqB,EACrB,kBAAkB,EAClB,OAAO,EACP,WAAW,EACX,aAAa,EACb,cAAc,EACd,aAAa,EACb,mBAAmB,EACnB,aAAa,EACb,qBAAqB,EACrB,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,EACrB,oBAAoB,EACpB,wBAAwB,EACxB,uBAAuB,EACvB,SAAS,EACT,eAAe,EACf,cAAc,EACd,sBAAsB,EACtB,oBAAoB,EACpB,sBAAsB,EACtB,eAAe,EACf,kBAAkB,EAClB,yBAAyB,EACzB,aAAa,GACd,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AACnE,YAAY,EACV,iBAAiB,EACjB,wBAAwB,EACxB,cAAc,EACd,uBAAuB,EACvB,8BAA8B,GAC/B,MAAM,iBAAiB,CAAC;AACzB,YAAY,EACV,wBAAwB,EACxB,uBAAuB,EACvB,uBAAuB,EACvB,sBAAsB,EACtB,YAAY,EACZ,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,aAAa,CAAC"}

package/dist/index.js

@@ -844,7 +844,7 @@ var REQUIRED_TABLES = [
 ];
 var PROBE_TABLES = new Set(["probe_identities", "probe_check_jobs", "probe_submissions"]);
 var REPORT_AUDIT_TABLES = new Set(["report_schedules", "report_runs", "audit_events"]);
-var CURRENT_SCHEMA_VERSION = "3";
+var CURRENT_SCHEMA_VERSION = "4";
 
 class StaleCheckResultError extends Error {
   constructor(message) {
@@ -905,7 +905,8 @@ class UptimeStore {
     this.db.run(`
       CREATE TABLE IF NOT EXISTS monitors (
         id TEXT PRIMARY KEY,
-        name TEXT NOT NULL UNIQUE,
+        workspace_id TEXT NOT NULL DEFAULT 'local',
+        name TEXT NOT NULL,
         kind TEXT NOT NULL CHECK (kind IN ('http', 'tcp', 'browser_page')),
         url TEXT,
         host TEXT,
@@ -920,9 +921,11 @@ class UptimeStore {
         last_checked_at TEXT,
         revision INTEGER NOT NULL DEFAULT 1,
         created_at TEXT NOT NULL,
-        updated_at TEXT NOT NULL
+        updated_at TEXT NOT NULL,
+        UNIQUE (workspace_id, name)
       )
     `);
+    this.ensureColumn("monitors", "workspace_id", "TEXT NOT NULL DEFAULT 'local'");
     this.ensureColumn("monitors", "revision", "INTEGER NOT NULL DEFAULT 1");
     this.ensureMonitorKindAllowsBrowserPage();
     this.db.run(`
@@ -1072,6 +1075,7 @@ class UptimeStore {
     `);
     this.db.query("INSERT OR REPLACE INTO schema_migrations (key, value, updated_at) VALUES ('schema_version', ?, ?)").run(CURRENT_SCHEMA_VERSION, new Date().toISOString());
     this.db.run("CREATE INDEX IF NOT EXISTS idx_results_monitor_time ON check_results(monitor_id, checked_at DESC)");
+    this.db.run("CREATE INDEX IF NOT EXISTS idx_monitors_workspace_enabled_name ON monitors(workspace_id, enabled, name)");
     this.db.run("CREATE INDEX IF NOT EXISTS idx_incidents_monitor_status ON incidents(monitor_id, status)");
     this.db.run("CREATE INDEX IF NOT EXISTS idx_check_leases_until ON check_leases(leased_until)");
     this.db.run("CREATE INDEX IF NOT EXISTS idx_monitor_provenance_monitor ON monitor_provenance(monitor_id)");
@@ -1133,8 +1137,10 @@ class UptimeStore {
     if (this.mode === "hosted")
       assertHostedTargetAllowed(normalized);
     const now = new Date().toISOString();
+    const workspaceId = normalizeWorkspaceId(options.workspaceId ?? input.workspaceId ?? "local");
     const monitor = {
       id: newId("mon"),
+      workspaceId,
       name: normalized.name,
       kind: normalized.kind,
       url: normalized.url ?? null,
@@ -1153,22 +1159,33 @@ class UptimeStore {
       updatedAt: now
     };
     this.db.query(`INSERT INTO monitors (
-          id, name, kind, url, host, port, method, expected_status,
+          id, workspace_id, name, kind, url, host, port, method, expected_status,
           interval_seconds, timeout_ms, retry_count, enabled, status,
           last_checked_at, revision, created_at, updated_at
-        ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`).run(monitor.id, monitor.name, monitor.kind, monitor.url, monitor.host, monitor.port, monitor.method, monitor.expectedStatus, monitor.intervalSeconds, monitor.timeoutMs, monitor.retryCount, monitor.enabled ? 1 : 0, monitor.status, monitor.lastCheckedAt, monitor.revision, monitor.createdAt, monitor.updatedAt);
+        ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`).run(monitor.id, monitor.workspaceId, monitor.name, monitor.kind, monitor.url, monitor.host, monitor.port, monitor.method, monitor.expectedStatus, monitor.intervalSeconds, monitor.timeoutMs, monitor.retryCount, monitor.enabled ? 1 : 0, monitor.status, monitor.lastCheckedAt, monitor.revision, monitor.createdAt, monitor.updatedAt);
     return monitor;
   }
   listMonitors(options = {}) {
-    const rows = options.includeDisabled ? this.db.query("SELECT * FROM monitors ORDER BY name ASC").all() : this.db.query("SELECT * FROM monitors WHERE enabled = 1 ORDER BY name ASC").all();
+    const workspaceId = options.workspaceId ? normalizeWorkspaceId(options.workspaceId) : undefined;
+    const clauses = [];
+    const args = [];
+    if (workspaceId) {
+      clauses.push("workspace_id = ?");
+      args.push(workspaceId);
+    }
+    if (!options.includeDisabled)
+      clauses.push("enabled = 1");
+    const where = clauses.length ? `WHERE ${clauses.join(" AND ")}` : "";
+    const rows = this.db.query(`SELECT * FROM monitors ${where} ORDER BY name ASC`).all(...args);
     return rows.map(monitorFromRow);
   }
-  getMonitor(idOrName) {
-    const row = this.db.query("SELECT * FROM monitors WHERE id = ? OR name = ?").get(idOrName, idOrName);
+  getMonitor(idOrName, options = {}) {
+    const workspaceId = options.workspaceId ? normalizeWorkspaceId(options.workspaceId) : undefined;
+    const row = this.db.query(`SELECT * FROM monitors WHERE (id = ? OR name = ?)${workspaceId ? " AND workspace_id = ?" : ""}`).get(...workspaceId ? [idOrName, idOrName, workspaceId] : [idOrName, idOrName]);
     return row ? monitorFromRow(row) : null;
   }
   updateMonitor(idOrName, input, options = {}) {
-    const current = this.getMonitor(idOrName);
+    const current = this.getMonitor(idOrName, { workspaceId: options.workspaceId });
     if (!current)
       throw new Error(`Monitor not found: ${idOrName}`);
     if (this.mode === "hosted") {
@@ -1192,10 +1209,10 @@ class UptimeStore {
     if (definitionChanged(current, next)) {
       this.closeOpenIncident(current.id, updatedAt);
     }
-    return this.getMonitor(current.id);
+    return this.getMonitor(current.id, { workspaceId: options.workspaceId });
   }
-  deleteMonitor(idOrName) {
-    const current = this.getMonitor(idOrName);
+  deleteMonitor(idOrName, options = {}) {
+    const current = this.getMonitor(idOrName, { workspaceId: options.workspaceId });
     if (!current)
       return false;
     this.db.query("DELETE FROM monitors WHERE id = ?").run(current.id);
@@ -1572,7 +1589,20 @@ class UptimeStore {
   }
   listResults(options = {}) {
     const limit = clampLimit(options.limit ?? 50);
-    const rows = options.monitorId ? this.db.query("SELECT * FROM check_results WHERE monitor_id = ? ORDER BY checked_at DESC LIMIT ?").all(options.monitorId, limit) : this.db.query("SELECT * FROM check_results ORDER BY checked_at DESC LIMIT ?").all(limit);
+    const workspaceId = options.workspaceId ? normalizeWorkspaceId(options.workspaceId) : undefined;
+    const clauses = [];
+    const args = [];
+    if (options.monitorId) {
+      clauses.push("check_results.monitor_id = ?");
+      args.push(options.monitorId);
+    }
+    if (workspaceId) {
+      clauses.push("monitors.workspace_id = ?");
+      args.push(workspaceId);
+    }
+    const where = clauses.length ? `WHERE ${clauses.join(" AND ")}` : "";
+    args.push(limit);
+    const rows = this.db.query(`SELECT check_results.* FROM check_results JOIN monitors ON monitors.id = check_results.monitor_id ${where} ORDER BY checked_at DESC LIMIT ?`).all(...args);
     return rows.map(checkResultFromRow);
   }
   getProvenance(source, sourceId) {
@@ -1615,24 +1645,28 @@ class UptimeStore {
     const clauses = [];
     const args = [];
     if (options.status) {
-      clauses.push("status = ?");
+      clauses.push("incidents.status = ?");
       args.push(options.status);
     }
     if (options.monitorId) {
-      clauses.push("monitor_id = ?");
+      clauses.push("incidents.monitor_id = ?");
       args.push(options.monitorId);
     }
+    if (options.workspaceId) {
+      clauses.push("monitors.workspace_id = ?");
+      args.push(normalizeWorkspaceId(options.workspaceId));
+    }
     const where = clauses.length ? `WHERE ${clauses.join(" AND ")}` : "";
     args.push(clampLimit(options.limit ?? 50));
-    const rows = this.db.query(`SELECT * FROM incidents ${where} ORDER BY opened_at DESC LIMIT ?`).all(...args);
+    const rows = this.db.query(`SELECT incidents.* FROM incidents JOIN monitors ON monitors.id = incidents.monitor_id ${where} ORDER BY opened_at DESC LIMIT ?`).all(...args);
     return rows.map(incidentFromRow);
   }
   getOpenIncident(monitorId) {
     const row = this.db.query("SELECT * FROM incidents WHERE monitor_id = ? AND status = 'open' ORDER BY opened_at DESC LIMIT 1").get(monitorId);
     return row ? incidentFromRow(row) : null;
   }
-  summary() {
-    const monitors = this.listMonitors({ includeDisabled: true });
+  summary(options = {}) {
+    const monitors = this.listMonitors({ includeDisabled: true, workspaceId: options.workspaceId });
     const summaries = monitors.map((monitor) => this.monitorSummary(monitor));
     return {
       generatedAt: new Date().toISOString(),
@@ -1644,11 +1678,15 @@ class UptimeStore {
         down: monitors.filter((m) => m.status === "down").length,
         paused: monitors.filter((m) => !m.enabled || m.status === "paused").length,
         unknown: monitors.filter((m) => m.status === "unknown").length,
-        openIncidents: this.countOpenIncidents()
+        openIncidents: this.countOpenIncidents(options.workspaceId)
       }
     };
   }
-  countOpenIncidents() {
+  countOpenIncidents(workspaceId) {
+    if (workspaceId) {
+      const row2 = this.db.query("SELECT COUNT(*) AS count FROM incidents JOIN monitors ON monitors.id = incidents.monitor_id WHERE incidents.status = 'open' AND monitors.workspace_id = ?").get(normalizeWorkspaceId(workspaceId));
+      return Number(row2?.count ?? 0);
+    }
     const row = this.db.query("SELECT COUNT(*) AS count FROM incidents WHERE status = 'open'").get();
     return Number(row?.count ?? 0);
   }
@@ -1712,7 +1750,9 @@ class UptimeStore {
   }
   ensureMonitorKindAllowsBrowserPage() {
     const row = this.db.query("SELECT sql FROM sqlite_master WHERE type = 'table' AND name = 'monitors'").get();
-    if (!row?.sql || row.sql.includes("browser_page"))
+    const needsBrowserPage = !row?.sql?.includes("browser_page");
+    const needsWorkspaceUnique = Boolean(row?.sql?.includes("name TEXT NOT NULL UNIQUE"));
+    if (!row?.sql || !needsBrowserPage && !needsWorkspaceUnique)
       return;
     this.db.run("PRAGMA foreign_keys = OFF");
     this.db.run("PRAGMA legacy_alter_table = ON");
@@ -1722,7 +1762,8 @@ class UptimeStore {
         this.db.run(`
           CREATE TABLE monitors (
             id TEXT PRIMARY KEY,
-            name TEXT NOT NULL UNIQUE,
+            workspace_id TEXT NOT NULL DEFAULT 'local',
+            name TEXT NOT NULL,
             kind TEXT NOT NULL CHECK (kind IN ('http', 'tcp', 'browser_page')),
             url TEXT,
             host TEXT,
@@ -1737,17 +1778,18 @@ class UptimeStore {
             last_checked_at TEXT,
             revision INTEGER NOT NULL DEFAULT 1,
             created_at TEXT NOT NULL,
-            updated_at TEXT NOT NULL
+            updated_at TEXT NOT NULL,
+            UNIQUE (workspace_id, name)
           )
         `);
         this.db.run(`
           INSERT INTO monitors (
-            id, name, kind, url, host, port, method, expected_status,
+            id, workspace_id, name, kind, url, host, port, method, expected_status,
             interval_seconds, timeout_ms, retry_count, enabled, status,
             last_checked_at, revision, created_at, updated_at
           )
           SELECT
-            id, name, kind, url, host, port, method, expected_status,
+            id, workspace_id, name, kind, url, host, port, method, expected_status,
             interval_seconds, timeout_ms, retry_count, enabled, status,
             last_checked_at, revision, created_at, updated_at
           FROM monitors_old_kind
@@ -1947,6 +1989,16 @@ function rejectControlCharacters2(value, label) {
     throw new Error(`${label} must not contain control characters`);
   }
 }
+function normalizeWorkspaceId(value) {
+  const normalized = value.trim();
+  if (!normalized)
+    throw new Error("Workspace id is required");
+  rejectControlCharacters2(normalized, "Workspace id");
+  if (!/^[A-Za-z0-9][A-Za-z0-9_.:-]{0,127}$/.test(normalized)) {
+    throw new Error("Workspace id contains unsupported characters");
+  }
+  return normalized;
+}
 function normalizeScheduleSlot(value) {
   const slot = value.trim();
   if (!slot)
@@ -2133,6 +2185,7 @@ function assertIsoTimestamp(value, label) {
 function monitorFromRow(row) {
   return {
     id: row.id,
+    workspaceId: row.workspace_id ?? "local",
     name: row.name,
     kind: row.kind,
     url: row.url,
@@ -2614,20 +2667,20 @@ class UptimeService {
   close() {
     this.store.close();
   }
-  createMonitor(input) {
-    return this.store.createMonitor(input);
+  createMonitor(input, options = {}) {
+    return this.store.createMonitor(input, options);
   }
-  updateMonitor(idOrName, input) {
-    return this.store.updateMonitor(idOrName, input);
+  updateMonitor(idOrName, input, options = {}) {
+    return this.store.updateMonitor(idOrName, input, options);
   }
-  deleteMonitor(idOrName) {
-    return this.store.deleteMonitor(idOrName);
+  deleteMonitor(idOrName, options = {}) {
+    return this.store.deleteMonitor(idOrName, options);
   }
   listMonitors(options = {}) {
     return this.store.listMonitors(options);
   }
-  getMonitor(idOrName) {
-    return this.store.getMonitor(idOrName);
+  getMonitor(idOrName, options = {}) {
+    return this.store.getMonitor(idOrName, options);
   }
   listResults(options = {}) {
     return this.store.listResults(options);
@@ -2635,8 +2688,8 @@ class UptimeService {
   listIncidents(options = {}) {
     return this.store.listIncidents(options);
   }
-  summary() {
-    return this.store.summary();
+  summary(options = {}) {
+    return this.store.summary(options);
   }
   createProbe(input) {
     const store = this.probeStore();
@@ -2692,7 +2745,8 @@ class UptimeService {
     return this.store.verifyBackup(backupPath);
   }
   buildReport(options = {}) {
-    return buildUptimeReport(this.summary(), options);
+    const { workspaceId, ...reportOptions } = options;
+    return buildUptimeReport(this.summary({ workspaceId }), reportOptions);
   }
   async sendReport(options = {}) {
     if (this.store.mode === "hosted" && (options.email || options.sms || options.logs)) {
@@ -3016,6 +3070,7 @@ class UptimeService {
       throw new Error("Probe job fencing token is invalid");
     if (!job.leaseExpiresAt || job.leaseExpiresAt <= new Date().toISOString())
       throw new Error("Probe job lease expired");
+    const evidence = input.evidence ? normalizeBrowserEvidence(monitor.url ?? monitor.host ?? "https://example.invalid", input.evidence) : null;
     const result = this.store.recordCheckResult({
       monitorId: monitor.id,
       checkedAt: input.checkedAt,
@@ -3023,7 +3078,7 @@ class UptimeService {
       latencyMs: input.latencyMs,
       statusCode: input.statusCode ?? null,
       error: input.error ?? null,
-      evidence: input.evidence ?? null,
+      evidence,
       attemptCount: input.attemptCount ?? 1,
       expectedMonitorRevision: input.monitorRevision
     });
@@ -3568,11 +3623,11 @@ async function handleHostedRequest(service, request, url, options) {
   }
   const apiPath = `/api${url.pathname.slice("/api/v1".length)}`;
   const scope = hostedScopeFor(request.method, apiPath);
-  requireHostedActor(request, url, options, scope);
+  const actor = requireHostedActor(request, url, options, scope);
   if (["POST", "PATCH", "DELETE"].includes(request.method)) {
     validateHostedMutationOrigin(request, url, options);
   }
-  return handleApiRoute(service, request, url, apiPath, options, true);
+  return handleApiRoute(service, request, url, apiPath, options, true, actor);
 }
 function validateHostedMutationOrigin(request, url, options) {
   const rawOrigin = request.headers.get("origin");
@@ -3587,12 +3642,12 @@ function validateHostedMutationOrigin(request, url, options) {
     throw new ApiError("cross-origin mutation rejected", 403);
   }
 }
-async function handleApiRoute(service, request, url, apiPath, options, hosted) {
+async function handleApiRoute(service, request, url, apiPath, options, hosted, actor) {
   if (request.method === "GET" && apiPath === "/api/summary") {
-    return json(service.summary());
+    return json(service.summary({ workspaceId: actor?.workspaceId }));
   }
   if (request.method === "GET" && apiPath === "/api/report") {
-    return json(service.buildReport());
+    return json(service.buildReport({ workspaceId: actor?.workspaceId }));
   }
   if (request.method === "POST" && apiPath === "/api/report") {
     if (hosted)
@@ -3649,22 +3704,24 @@ async function handleApiRoute(service, request, url, apiPath, options, hosted) {
     }));
   }
   if (request.method === "GET" && apiPath === "/api/monitors") {
-    return json(service.listMonitors({ includeDisabled: url.searchParams.get("includeDisabled") === "true" }));
+    return json(service.listMonitors({ includeDisabled: url.searchParams.get("includeDisabled") === "true", workspaceId: actor?.workspaceId }));
   }
   if (request.method === "POST" && apiPath === "/api/monitors") {
-    return json(service.createMonitor(await jsonBody(request)), 201);
+    return json(service.createMonitor(await jsonBody(request), { workspaceId: actor?.workspaceId }), 201);
   }
   if (request.method === "GET" && apiPath === "/api/incidents") {
     const status = url.searchParams.get("status");
     return json(service.listIncidents({
       status: status === "open" || status === "closed" ? status : undefined,
       monitorId: url.searchParams.get("monitorId") ?? undefined,
+      workspaceId: actor?.workspaceId,
       limit: numericParam(url, "limit", 50)
     }));
   }
   if (request.method === "GET" && apiPath === "/api/results") {
     return json(service.listResults({
       monitorId: url.searchParams.get("monitorId") ?? undefined,
+      workspaceId: actor?.workspaceId,
       limit: numericParam(url, "limit", 50)
     }));
   }
@@ -3723,14 +3780,14 @@ async function handleApiRoute(service, request, url, apiPath, options, hosted) {
   if (monitorMatch) {
     const id = decodeURIComponent(monitorMatch[1]);
     if (request.method === "GET" && !monitorMatch[2]) {
-      const monitor = service.getMonitor(id);
+      const monitor = service.getMonitor(id, { workspaceId: actor?.workspaceId });
       return monitor ? json(monitor) : json({ error: "not found" }, 404);
     }
     if (request.method === "PATCH" && !monitorMatch[2]) {
-      return json(service.updateMonitor(id, await jsonBody(request)));
+      return json(service.updateMonitor(id, await jsonBody(request), { workspaceId: actor?.workspaceId }));
     }
     if (request.method === "DELETE" && !monitorMatch[2]) {
-      return json({ deleted: service.deleteMonitor(id) });
+      return json({ deleted: service.deleteMonitor(id, { workspaceId: actor?.workspaceId }) });
     }
     if (request.method === "POST" && monitorMatch[2] === "check") {
       if (hosted)
@@ -3881,7 +3938,7 @@ function buildAwsDeploymentPlan(options = {}) {
   const image = clean(options.image, `${imageRepositoryUri}@sha256:<image-digest>`);
   const evidenceBucket = clean(options.evidenceBucket, `hasna-${stage}-${prefix}-evidence`);
   const hostedSqliteDbPath = clean(options.hostedSqliteDbPath, DEFAULT_HOSTED_SQLITE_DB);
-  const runtimePackageVersion = clean(options.runtimePackageVersion, "0.1.8");
+  const runtimePackageVersion = clean(options.runtimePackageVersion, "0.1.10");
   const protectedAccessMode = options.protectedAccessMode ?? DEFAULT_PROTECTED_ACCESS_MODE;
   const protectedAccessUrl = protectedAccessMode === "cloudfront_default_domain" ? "https://<cloudfront-domain>" : `https://${hostname}`;
   const cluster = `${prefix}-${stage}`;
@@ -4013,9 +4070,9 @@ function buildAwsDeploymentPlan(options = {}) {
         "Disable scheduler/reporter services before data rollback.",
         "Restore EFS backup recovery point only after explicit operator approval and audit record."
       ],
-      spark01: [
+      privateProbe: [
         "Create a private probe identity with a caller-managed public key.",
-        "Install @hasna/uptime on Spark01 and write the generated env file with mode 0600.",
+        "Install @hasna/uptime on the private probe operator machine and write the generated env file with mode 0600.",
         "Run the private probe against the hosted /api/v1 probe endpoint once it exists."
       ]
     },
@@ -4024,7 +4081,7 @@ function buildAwsDeploymentPlan(options = {}) {
       "The EFS SQLite bridge is single-writer only: web target desired count is 1 and scheduler/public-probe/reporter targets remain 0 until Postgres and cloud leases exist.",
       "Hosted production auth/RBAC must replace broad static hosted-token operation before exposure.",
       "Public probe execution still needs DNS, redirect, and rebinding SSRF enforcement plus cloud check-job leases.",
-      "Spark01 hosted probe enrollment, claim, submit, heartbeat, revocation, and rotation are not cloud-backed yet."
+      "Private probe enrollment, claim, submit, heartbeat, revocation, and rotation are not cloud-backed yet."
     ],
     requiredEvidence: [
       "Infrastructure PR/synth/plan from the approved infra repository.",
@@ -4034,7 +4091,7 @@ function buildAwsDeploymentPlan(options = {}) {
       "Single-writer ECS evidence: one web task maximum and no scheduler/public-probe/reporter EFS mounts.",
       "EFS encryption, access point, mount-target, AWS Backup, and restore-drill evidence.",
       "S3 bucket KMS, versioning, lifecycle, and public-access-block evidence.",
-      "Spark01 private-probe registration, key-file mode, heartbeat, and revocation evidence."
+      "Private-probe registration, key-file mode, heartbeat, and revocation evidence."
     ],
     safety: {
       liveAwsMutation: false,
@@ -4052,16 +4109,16 @@ function buildAwsDeploymentPlan(options = {}) {
     }
   };
 }
-function buildSpark01CloudConfig(options = {}) {
+function buildPrivateProbeCloudConfig(options = {}) {
   const apiUrl = clean(options.apiUrl, `https://${DEFAULT_HOSTNAME}/api/v1`);
   const workspaceId = clean(options.workspaceId, DEFAULT_WORKSPACE_ID);
-  const machineId = clean(options.machineId, "spark01");
-  const privateKeyFile = clean(options.probePrivateKeyFile, "~/.hasna/uptime/probes/spark01.key.pem");
+  const machineId = clean(options.machineId, "private-probe-01");
+  const privateKeyFile = clean(options.probePrivateKeyFile, "~/.hasna/uptime/probes/private-probe-01.key.pem");
   const probeId = options.probeId?.trim();
   const blockers = [
     ...probeId ? [] : ["Cloud-registered private probe id is required before writing a sourceable env file."],
     "Hosted probe claim and submit routes still fail closed until cloud check_jobs and workspace stores are implemented.",
-    "Spark01 enrollment, heartbeat, revocation, rotation, and bounded offline lease handling are not implemented yet."
+    "Private probe enrollment, heartbeat, revocation, rotation, and bounded offline lease handling are not implemented yet."
   ];
   const env2 = {
     HASNA_UPTIME_MODE: "hosted",
@@ -4075,7 +4132,7 @@ function buildSpark01CloudConfig(options = {}) {
   if (probeId)
     env2.HASNA_UPTIME_PRIVATE_PROBE_ID = probeId;
   return {
-    kind: "open-uptime.spark01-cloud-config",
+    kind: "open-uptime.private-probe-cloud-config",
     version: 1,
     generatedAt: new Date().toISOString(),
     status: "blocked",
@@ -4087,7 +4144,7 @@ function buildSpark01CloudConfig(options = {}) {
       {
         path: privateKeyFile,
         mode: "0600",
-        purpose: "Ed25519 private key generated on Spark01; never paste into cloud config."
+        purpose: "Ed25519 private key generated on the private probe machine; never paste into cloud config."
       },
       {
         path: "~/.hasna/uptime/cloud.env",
@@ -4097,7 +4154,7 @@ function buildSpark01CloudConfig(options = {}) {
     ],
     commands: [
       "bun install -g @hasna/uptime@latest",
-      "Generate the Spark01 private key locally and register only its public key with the hosted control plane once registration exists.",
+      "Generate the private probe key locally and register only its public key with the hosted control plane once registration exists.",
       "Write ~/.hasna/uptime/cloud.env from this plan, then source it for the private probe service.",
       "Start the private probe worker only after hosted /api/v1 probe claim/submit routes are backed by cloud jobs."
     ],
@@ -4106,18 +4163,18 @@ function buildSpark01CloudConfig(options = {}) {
       privateKeyInline: false,
       tokenInline: false,
       notes: [
-        "This config is hosted-targeted preflight: Spark01 must not start until cloud probe routes are backed by hosted state.",
+        "This config is hosted-targeted preflight: the private probe must not start until cloud probe routes are backed by hosted state.",
         "The private key file path is referenced, not embedded.",
         "Hosted token or probe auth material must come from the machine secret store, not this generated config."
       ]
     }
   };
 }
-function renderSpark01Env(config) {
+function renderPrivateProbeEnv(config) {
   const required = ["HASNA_UPTIME_PRIVATE_PROBE_ID"];
   const missing = required.filter((key) => !config.env[key]);
   if (missing.length > 0) {
-    throw new Error(`Spark01 env output requires ${missing.join(", ")}`);
+    throw new Error(`private probe env output requires ${missing.join(", ")}`);
   }
   return Object.entries(config.env).map(([key, value]) => `${key}=${shellEscape(value)}`).join(`
 `);
@@ -4162,7 +4219,7 @@ export {
   runHttpCheck,
   runBrowserPageCheck,
   rollbackImport,
-  renderSpark01Env,
+  renderPrivateProbeEnv,
   probeResultSigningPayload,
   probePublicKeyFingerprint,
   previewImport,
@@ -4171,7 +4228,7 @@ export {
   createUptimeClient,
   createApiHandler,
   buildUptimeReport,
-  buildSpark01CloudConfig,
+  buildPrivateProbeCloudConfig,
   buildAwsDeploymentPlan,
   applyImport,
   UptimeStore,